I have successfully created an AXIS web service client for a Microsoft .Net WSE 2.0 Web Service.
I used Apache WSS4J library for security.
i successfully send UsernameToken to the Web Service with PasswordDigest option.
The problem is that i get the message:
The security token could not be authenticated or authorized
on inspecting the SOAP request using the server application i notice that both username and the hashed credentials arrive at the server but authentication fails. However when i use a windows based web service client the password digest is diffrent from the one coming from AXIS and
Since both WSS4J and WSE are WS security compliant (OASIS) why the diffrence in the hash?
What could be wrong?
How is this related to JBossWS?
JBossWS-1.0, which is availble in jboss-head has a WS-Security implementation.